Download
Community
knowledgeBase
» www.inclusivedownload.com
Overview
Analysis
IPs Addresses (8)
Downloads (12)
Network (14)
Website Detail
www.inclusivedownload.com
Moniker Privacy Services (Proxy Registrant)
Domain Information
The domain www.inclusivedownload.com is registered by proxy through Moniker Online Services and was originally registered in October of 2013. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrant:
Moniker Privacy Services
Registrar:
Moniker Online Services
Server location:
Virginia, United States (US)
Create date:
Thursday, October 31, 2013
Expires date:
Friday, October 31, 2014
Updated date:
Friday, November 1, 2013
ASN:
AS14618 AMAZON-AES - Amazon.com, Inc.,US
Root domain:
inclusivedownload.com
Whois:
2 inclusivedownload.com records
Analysis
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.ShetefSolutionsConsulting1998.FF, PUP.Installer.ShetefSolutionsConsulting1998.r, PUP.Installer.ShetefSolutionsConsulting1998.y
100.00%
Malwarebytes
PUP.Optional.InstallMonetizer
100.00%
Dr.Web
Adware.Downware.1575
100.00%
VIPRE Antivirus
Amonetize
100.00%
Avira AntiVirus
ADWARE/Adware.Gen2
100.00%
ESET NOD32
Win32/Amonetize.AA (variant), Win32/Amonetize.AD (variant)
100.00%
IKARUS anti.virus
not-a-virus:Downloader.Win32.Agent
100.00%
Trend Micro House Call
TROJ_GEN.F47V0116, TROJ_GEN.F47V0121, TROJ_GEN.F47V0120
75.00%
Fortinet FortiGate
Adware/Amonetize, Riskware/Amonetize
75.00%
McAfee
Artemis!6EE57BBE3A49, Artemis!840C22594669, Artemis!D99BC592D457
75.00%
avast!
Win32:Amonetize-E [PUP]
50.00%
Agnitum Outpost
PUA.Downware, PUA.Amonetize
50.00%
AhnLab V3 Security
PUP/Win32.Amonetiz
50.00%
Qihoo 360 Security
HEUR/Malware.QVM01.Gen
50.00%
Kaspersky
not-a-virus:AdWare.Win32.Amonetize
25.00%
IPs Addresses
The domain www.inclusivedownload.com has been seen to resolve to the following 8 IP addresses.
50.17.209.45
ec2-50-17-209-45.compute-1.amazonaws.com
September 4, 2014
50.17.206.16
ec2-50-17-206-16.compute-1.amazonaws.com
September 4, 2014
23.21.228.251
ec2-23-21-228-251.compute-1.amazonaws.com
September 4, 2014
107.20.210.63
ec2-107-20-210-63.compute-1.amazonaws.com
September 4, 2014
107.21.115.114
ec2-107-21-115-114.compute-1.amazonaws.com
April 26, 2014
54.235.68.127
ec2-54-235-68-127.compute-1.amazonaws.com
April 26, 2014
54.225.181.84
ec2-54-225-181-84.compute-1.amazonaws.com
March 15, 2014
54.225.132.130
ec2-54-225-132-130.compute-1.amazonaws.com
March 14, 2014
Downloads
File downloads found at URLs served by www.inclusivedownload.com.
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]=Arteria Iliaca Interna.rar_Downloader&instid[appsetupurl]=http://download.reliabletrusteddownloads.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.reliabletrusteddownloads.com/d1/logo150x150.png&prefix=Arteria Iliaca Interna.rar&instid[thankyoupage]=http://download.reliabletrusteddownloads.com/.../thank_you.php?ti1=1460000&ti2=0&ti3=2014-01-21T19:33:06.817376 00:00¶meter=Arteria Iliaca Interna.rar&instid[interrupted]=http://download.reliabletrusteddownloads.com/.../interrupted.php?ti1=1460000&ti2=0&ti3=2014-01-21T19:33:06.817376 00:00¶meter=Arteria Iliaca Interna.rar&ti1=1460000&ti2=0&ti3=2014-01-21T19:33:06.817376 00:00
(active hdl 8.1 crack.rar__3515_i279624241_il1617939.exe)
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Pokemon Fuligin Gba_Downloader&instid[appsetupurl]=http://download.trustworthydownload.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.trustworthydownload.com/d1/logo150x150.png&prefix=Pokemon Fuligin Gba&instid[thankyoupage]=http://download.trustworthydownload.com/.../thank_you.php?ti1=1145000&ti2=0&ti3=2014-01-20T21:40:34.377393 00:00¶meter=Pokemon Fuligin Gba&instid[interrupted]=http://download.trustworthydownload.com/.../interrupted.php?ti1=1145000&ti2=0&ti3=2014-01-20T21:40:34.377393 00:00¶meter=Pokemon Fuligin Gba&ti1=1145000&ti2=0&ti3=2014-01-20T21:40:34.377393 00:00
(mot de passe hotmail hack v6.1.exe__3516_i277320470_il1059340.exe)
8 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Florence The Machine Lungs The B Sides_Downloader&instid[appsetupurl]=http://download.somedownload.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.somedownload.com/d1/logo150x150.png&prefix=Florence The Machine Lungs The B Sides&instid[thankyoupage]=http://download.somedownload.com/.../thank_you.php?ti1=400000&ti2=3&ti3=2014-01-20T00:44:01.452453 00:00¶meter=Florence The Machine Lungs The B Sides&instid[interrupted]=http://download.somedownload.com/.../interrupted.php?ti1=400000&ti2=3&ti3=2014-01-20T00:44:01.452453 00:00¶meter=Florence The Machine Lungs The B Sides&ti1=400000&ti2=3&ti3=2014-01-20T00:44:01.452453 00:00
(password watch dogs txt__3038_i275310567_il614961.exe)
8 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]=Florence The Machine Lungs The B Sides_Downloader&instid[appsetupurl]=http://download.somedownload.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.somedownload.com/d1/logo150x150.png&prefix=Florence The Machine Lungs The B Sides&instid[thankyoupage]=http://download.somedownload.com/.../thank_you.php?ti1=400000&ti2=3&ti3=2014-01-20T00:44:01.452453 00:00¶meter=Florence The Machine Lungs The B Sides&instid[interrupted]=http://download.somedownload.com/.../interrupted.php?ti1=400000&ti2=3&ti3=2014-01-20T00:44:01.452453 00:00¶meter=Florence The Machine Lungs The B Sides&ti1=400000&ti2=3&ti3=2014-01-20T00:44:01.452453 00:00
(password watch dogs txt__3038_i275310567_il614961.exe)
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Crack Recover My File V5.2.1.rar_Downloader&instid[appsetupurl]=http://download.reliabletrusteddownloads.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.reliabletrusteddownloads.com/d1/logo150x150.png&prefix=Crack Recover My File V5.2.1.rar&instid[thankyoupage]=http://download.reliabletrusteddownloads.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:42:46.689506 00:00¶meter=Crack Recover My File V5.2.1.rar&instid[interrupted]=http://download.reliabletrusteddownloads.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:42:46.689506 00:00¶meter=Crack Recover My File V5.2.1.rar&ti1=1405000&ti2=0&ti3=2014-01-20T23:42:46.689506 00:00
(mot de passe hotmail hack v6.1.exe__3516_i277320470_il1059340.exe)
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3516&instid[appname]=Crack Recover My File V5.2.1.rar_Downloader&instid[appsetupurl]=http://download.reliabletrusteddownloads.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.reliabletrusteddownloads.com/d1/logo150x150.png&prefix=Crack Recover My File V5.2.1.rar&instid[thankyoupage]=http://download.reliabletrusteddownloads.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:42:46.689506 00:00¶meter=Crack Recover My File V5.2.1.rar&instid[interrupted]=http://download.reliabletrusteddownloads.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:42:46.689506 00:00¶meter=Crack Recover My File V5.2.1.rar&ti1=1405000&ti2=0&ti3=2014-01-20T23:42:46.689506 00:00
(mot de passe hotmail hack v6.1.exe__3516_i277320470_il1059340.exe)
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]=Crack Recover My File V5.2.1.rar_Downloader&instid[appsetupurl]=http://download.reliabletrusteddownloads.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.reliabletrusteddownloads.com/d1/logo150x150.png&prefix=Crack Recover My File V5.2.1.rar&instid[thankyoupage]=http://download.reliabletrusteddownloads.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:34:37.932080 00:00¶meter=Crack Recover My File V5.2.1.rar&instid[interrupted]=http://download.reliabletrusteddownloads.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:34:37.932080 00:00¶meter=Crack Recover My File V5.2.1.rar&ti1=1405000&ti2=0&ti3=2014-01-20T23:34:37.932080 00:00
(mot de passe hotmail hack v6.1.exe__3516_i277320470_il1059340.exe)
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3515&instid[appname]=Crack Recover My File V5.2.1.rar_Downloader&instid[appsetupurl]=http://download.reliabletrusteddownloads.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.reliabletrusteddownloads.com/d1/logo150x150.png&prefix=Crack Recover My File V5.2.1.rar&instid[thankyoupage]=http://download.reliabletrusteddownloads.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:34:37.932080 00:00¶meter=Crack Recover My File V5.2.1.rar&instid[interrupted]=http://download.reliabletrusteddownloads.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:34:37.932080 00:00¶meter=Crack Recover My File V5.2.1.rar&ti1=1405000&ti2=0&ti3=2014-01-20T23:34:37.932080 00:00
(mot de passe hotmail hack v6.1.exe__3516_i277320470_il1059340.exe)
14 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3038&instid[appname]=Crack Recover My File V5.2.1.rar_Downloader&instid[appsetupurl]=http://download.reliabletrusteddownloads.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.reliabletrusteddownloads.com/d1/logo150x150.png&prefix=Crack Recover My File V5.2.1.rar&instid[thankyoupage]=http://download.reliabletrusteddownloads.com/.../thank_you.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:23:59.251193 00:00¶meter=Crack Recover My File V5.2.1.rar&instid[interrupted]=http://download.reliabletrusteddownloads.com/.../interrupted.php?ti1=1405000&ti2=0&ti3=2014-01-20T23:23:59.251193 00:00¶meter=Crack Recover My File V5.2.1.rar&ti1=1405000&ti2=0&ti3=2014-01-20T23:23:59.251193 00:00
(mot de passe hotmail hack v6.1.exe__3516_i277320470_il1059340.exe)
12 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=3039&instid[appname]=Visual Paradigm For UML 10.2 Setup VPL license generator.rar_Downloader&instid[appsetupurl]=http://download.getlinksinaseconds.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.getlinksinaseconds.com/d1/logo150x150.png&prefix=Visual Paradigm For UML 10.2 Setup VPL license generator.rar&instid[thankyoupage]=http://download.getlinksinaseconds.com/.../thank_you.php?ti1=1260000&ti2=0&ti3=2014-01-19T04:46:10.968756 00:00¶meter=Visual Paradigm For UML 10.2 Setup VPL license generator.rar&instid[interrupted]=http://download.getlinksinaseconds.com/.../interrupted.php?ti1=1260000&ti2=0&ti3=2014-01-19T04:46:10.968756 00:00¶meter=Visual Paradigm For UML 10.2 Setup VPL license generator.rar&ti1=1260000&ti2=0&ti3=2014-01-19T04%3
(for dummies ebooks full colection__3039_i273260150_il137540.exe)
12 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=2789&instid[appname]=the real world an introduction to sociology 3rd edition pdf_Downloader&instid[appsetupurl]=http://download.mediafilesdownload.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.mediafilesdownload.com/d1/logo150x150.png&prefix=the real world an introduction to sociology 3rd edition pdf&instid[thankyoupage]=http://download.mediafilesdownload.com/.../thank_you.php?ti1=500&ti2=2014-01-18T16:14:02 00:00&ti3=¶meter=the real world an introduction to sociology 3rd edition pdf&instid[interrupted]=http://download.mediafilesdownload.com/.../interrupted.php?ti1=500&ti2=2014-01-18T16:14:02 00:00&ti3=¶meter=the real world an introduction to sociology 3rd edition pdf&ti1=500&ti2=2014-01-18T16:14:02 00:00&ti3=
(for dummies ebooks full colection__3039_i273260150_il137540.exe)
8 / 68 (Adware)
http://www.inclusivedownload.com/download.php?version=1.1.5.98&campid=2789&instid[appname]=Risa Technologies 2013 Suite [2013,ENG]_Downloader&instid[appsetupurl]=http://download.quadownload.com/d1/setup.exe&instid[cmdline]=/S&instid[appimageurl]=http://download.quadownload.com/d1/logo150x150.png&prefix=Risa Technologies 2013 Suite [2013,ENG]&instid[thankyoupage]=http://download.quadownload.com/.../thank_you.php?ti1=500&ti2=2014-01-20T01:11:31 00:00&ti3=¶meter=Risa Technologies 2013 Suite [2013,ENG]&instid[interrupted]=http://download.quadownload.com/.../interrupted.php?ti1=500&ti2=2014-01-20T01:11:31 00:00&ti3=¶meter=Risa Technologies 2013 Suite [2013,ENG]&ti1=500&ti2=2014-01-20T01:11:31 00:00&ti3=
(password watch dogs txt__3038_i275310567_il614961.exe)
Network Communications
The following 14 files have been seen to comunicate with www.inclusivedownload.com in live environments.
TCP »
107.20.210.63
:80
magiciso maker v54251 spanish__3039_i1081707458_il1646000.exe
TCP »
107.20.210.63
:80
gta 5 pc installer__5247_il384.exe
TCP »
23.21.228.251
:80
pes.201__7214_il332.exe
TCP »
50.17.206.16
:80
Google.Chrome__2309_il52306.exe
TCP »
50.17.206.16
:80
Client.exe
TCP »
50.17.206.16
:80
Client.exe
TCP »
50.17.206.16
:80
file.downloader__9581_il263.exe
TCP »
50.17.209.45
:80
pes.201__7214_il332.exe
TCP »
50.17.209.45
:80
Client.exe
TCP »
50.17.209.45
:80
afirst.exe
TCP »
54.225.181.84
:80
EagleGet.exe (EagleGet Downloader by EagleGet.com)
TCP »
54.225.181.84
:80
skyhook wifi hack password 2013 zip registration key__3038_i356390957_il5637585.exe (Installer)
TCP »
54.225.181.84
:80
kmspico 9.1.3 final, activator all windows and office__4502_il16014.exe (Installer)
TCP »
54.225.181.84
:80
updater.exe (Installer)
TCP »
54.225.181.84
:80
microsoft office 2013 professional plus full activator crack (32.bit-64.bit)__6266_il12065.exe
Website Details
URL:
http://www.inclusivedownload.com/
Network:
Amazon Web Services (AWS), running an EC2 instance
Web server:
Apache/2.2.15 (Red Hat) (PHP/5.3.3)
X